Lead, Infrastructure Security Engineer - CASB and DSPM

Requirements

• Experience with Z Scaler for CASB, DSPM and DLP functions
• Experience with Azure / AWS to design the appropriate security controls
• Experience with Splunk and Entra ID
• Relevant certifications (e.g., CISSP, CCSP, Microsoft Security certifications).
• Experience with automation and scripting (PowerShell, Python).
• Knowledge of API integrations and security orchestration.
• Experience in highly regulated industries (finance, healthcare, etc.).
• You'll Love Working Here Because You Can
• What we offer you:
• Medical, dent

Benefits

Additional Information

Job Classification: Technology - Engineering & Cloud Are you interested in building capabilities that enable the organization with innovation, speed, agility, scalability, and efficiency? The Global Technology team takes great pride in our culture where digital transformation is built into our DNA! When you join our organization at Prudential, you'll unlock an exciting and impactful career - all while growing your skills and advancing your profession at one of the world's leading financial services institutions. Your Team & Role We are seeking a highly skilled Lead Infrastructure Security Engineer with deep expertise in Cloud Access Security Broker (CASB), Data Security Posture Management (DSPM), and Microsoft 365 (O365) data security technologies. This role is responsible for designing, implementing, and maintaining data protection strategies across cloud and SaaS environments by leveraging Z Scaler. Ideal candidate should have a strong focus on safeguarding sensitive data, ensuring regulatory compliance, and mitigating insider and external threats. Here is What You Can Expect on a Typical Day Architecture & Design Design and implement enterprise-wide data security solutions leveraging CASB, DSPM, and Microsoft 365 security capabilities preferably with Z Scaler Develop secure architectures for SaaS, IaaS, and PaaS environments with a focus on data visibility and protection. CASB Management Deploy, configure, and optimize CASB solutions to enforce security policies across cloud applications (introspection, shadow IT discovery) Monitor user activity, detect anomalies, and prevent data exfiltration. Integrate CASB with identity providers (e.g., Entra / Azure AD) and SIEM/SOAR (e.g., Splunk) platforms. DSPM Implementation Lead the implementation and operationalization of DSPM tools to discover, classify, and monitor sensitive data across environments. Establish data classification frameworks and automate data risk assessments. Provide continuous visibility into data exposure, access risks, and compliance gaps. Integrate Microsoft CoPilot and Z Scaler or similar CASB / DSPM products Microsoft 365 Security Administer and enhance Microsoft 365 security controls, including: Sensitivity labels and information protection Insider Risk Management Microsoft Defender for Cloud Apps Secure Exchange Online, SharePoint Online, OneDrive, and Teams environments. Threat Detection & Incident Response Investigate security alerts related to data access, sharing, and exfiltration. Collaborate with SOC and Incident Response teams to remediate threats. Develop detection rules and automated response workflows. Compliance & Governance Ensure alignment with regulatory frameworks (e.g., GDPR, HIPAA, CCPA). Support audits and compliance reporting related to data security controls. Define and enforce data governance policies and standards. The Skills & Expertise You Bring Required Qualifications Bachelor's degree in: Computer Science, Information Security, or a related field (or equivalent experience). 7+ years of experience in cybersecurity, with a strong focus on data security. Hands-on experience with CASB solutions (e.g., Z Scaler, Microsoft Defender for Cloud Apps, etc....). Proven experience implementing and managing DSPM tools and frameworks. Deep expertise in Microsoft 365 security and compliance features. Strong understanding of cloud platforms (Azure/ AWS preferred). Experience with DLP, data classification, encryption, and access controls. Familiarity with SIEM/SOAR tools (e.g., Sentinel, Splunk). Knowledge of identity and access management (IAM), including Zero Trust principles.

Your Match

How well this role fits your profile.

Company Intel

What employees say

Worked at pru? Share your experience